A new version of the TDL rootkit-type malware program downloads and abuses an open-source library called the CEF (Chromium Embedded Framework) that allows developers to embed the Chromium Web rendering engine inside their own applications, according to security researchers from antivirus vendor Symantec.

In an effort to temporarily block the abuse, CEF project administrators suspended the framework's primary download location on Google Code.